• Categories
  • Recent
  • Tags
  • Popular
  • Users
  • Search
  • Register
  • Login
Netgate Discussion Forum
  • Categories
  • Recent
  • Tags
  • Popular
  • Users
  • Search
  • Register
  • Login

FIXED: IPSec broken with July 11 version

Scheduled Pinned Locked Moved 2.0-RC Snapshot Feedback and Problems - RETIRED
4 Posts 1 Posters 3.1k Views
Loading More Posts
  • Oldest to Newest
  • Newest to Oldest
  • Most Votes
Reply
  • Reply as topic
Log in to reply
This topic has been deleted. Only users with topic management privileges can see it.
  • J
    jasonl99
    last edited by Jul 13, 2008, 9:23 PM Jul 12, 2008, 5:24 AM

    I did the "auto upgrade" to Alpha Friday.  I had no internet connectivity, and the following errors:

    php: : There were error(s) loading the rules: /tmp/rules.debug:232: syntax error /tmp/rules.debug:233: syntax error /tmp/rules.debug:234: syntax error /tmp/rules.debug:235: syntax error /tmp/rules.debug:236: syntax error /tmp/rules.debug:237: syntax error /tmp/rules.debug:238: syntax error /tmp/rules.debug:239: syntax error /tmp/rules.debug:240: syntax error /tmp/rules.debug:241: syntax error /tmp/rules.debug:242: syntax error /tmp/rules.debug:243: syntax error pfctl: Syntax error in config file: pf rules not loaded - The line in question reads [232]: pass out on $wan route-to ( em1 ) proto udp from any to xXX.XXX.XXX.154 port = 500 keep state label "IPsec: Work - outbound isakmp"

    I have hidden the ip address (xxx.xxx.xxx.154)

    The previous alpha worked fine.

    I have two ipsec tunnels, and I had to disable both to get filters to load - which means ipsec is completely broken for me now.

    1 Reply Last reply Reply Quote 0
    • J
      jasonl99
      last edited by Jul 13, 2008, 12:39 AM

      With today's build (built on Sat Jul 12 18:55:40 EDT 2008) I no longer get rule errors with ipsec, but now raccoon won't start.  On the services page, I get the following:

      Warning: file_get_contents(/var/run/openvpn_server0.pid): failed to open stream: No such file or directory in /etc/inc/service-utils.inc on line 146 Warning: file_get_contents(/var/run/openvpn_client0.pid): failed to open stream: No such file or directory in /etc/inc/service-utils.inc on line 146

      Attempting to start raccoon fails (though pfsense says it started successfully, it does not)

      raccoon.jpg
      raccoon.jpg_thumb

      1 Reply Last reply Reply Quote 0
      • J
        jasonl99
        last edited by Jul 13, 2008, 2:58 PM

        I didn't even think to look on the system logs page under ipSec, but here's the error that I would assume is causing racoon to not start?

        Jul 12 19:32:19 racoon: ERROR: parse error is nothing, but yyerrorcount is 2.
        Jul 12 19:32:19 racoon: ERROR: /var/etc/racoon.conf:20: "on" NAT-T support not compiled in.
        Jul 12 19:32:19 racoon: ERROR: /var/etc/racoon.conf:9: "4500" NAT-T support not compiled in.
        Jul 12 19:32:19 racoon: INFO: Reading configuration from "/var/etc/racoon.conf"

        1 Reply Last reply Reply Quote 0
        • J
          jasonl99
          last edited by Jul 13, 2008, 9:24 PM

          Now working with  "Sun Jul 13 16:41:08 EDT 2008" build

          1 Reply Last reply Reply Quote 0
          4 out of 4
          • First post
            4/4
            Last post
          Copyright 2025 Rubicon Communications LLC (Netgate). All rights reserved.
            This community forum collects and processes your personal information.
            consent.not_received